This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to modify communication between two internal networks? (Ethernet VLAN or just Ethernet for the type)

Hello we have a Sophos SG210 with the following firmware 9.407-3

We are wanting to figure out where we should be going to modify the communication between two internal networks. We want them to be able to talk to each other but we want to restrict access so that they are not freely communicating with each other.

This thread was automatically locked due to age.

0 dirkkotte over 8 years ago

booth is possible.

if you have a dedicated switch for every network you do not need VLAN.

but if you have booth networks at the same switch and isolate them with VLAN, you may use one Connection with VLAN tagged packets to connect booth VLANS to the UTM.

check https://en.wikipedia.org/wiki/Virtual_LAN
Cancel
Vote Up 0 Vote Down

Cancel
0 zaphod over 8 years ago

easiest way without using vlans:

each network should use other ip-net (e.g. 192.168.111.0/24 and 192.168.112.0/24).

connect them on two ethernet ports on your firewall and use routing / packet-filter easy as you want.
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 8 years ago

Hi, Sergio, and welcome to the UTM Community!

If the suggestions from Dirk and zaphod don't get you where you want to go, please be more specific about what restrictions you have in mind.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel